Release 3.6.8 prep

README

@@ -32,7 +32,31 @@ before calling wolfSSL_new();  Though it's not recommended.
 
 *** end Notes ***
 
-wolfSSL (Formerly CyaSSL) Release 3.6.6 (08/20/2015)
+wolfSSL (Formerly CyaSSL) Release 3.6.8 (09/17/2015)
+
+Release 3.6.8 of wolfSSL fixes two high severity vulnerabilities.  It also
+includes bug fixes and new features including:
+
+- Two High level security fixes, all users SHOULD update.
+  a) If using wolfSSL for DTLS on the server side of a publicly accessible
+     machine you MUST update.
+  b) If using wolfSSL for TLS on the server side with private RSA keys allowing
+     ephemeral key exchange without low memory optimziations you MUST update and
+     regenerate the private RSA keys.
+
+     Please see https://www.wolfssl.com/wolfSSL/Blog/Blog.html for more details
+
+- No filesystem build fixes for various configurations
+- Certificate generation now supports several extensions including KeyUsage,
+    SKID, AKID, and Ceritifcate Policies
+- CRLs can be loaded from buffers as well as files now
+- SHA-512 Ceritifcate Signing generation
+- Fixes for sniffer reassembly processing
+
+See INSTALL file for build instructions.
+More info can be found on-line at //http://wolfssl.com/yaSSL/Docs.html
+
+ ********* wolfSSL (Formerly CyaSSL) Release 3.6.6 (08/20/2015)
 
 Release 3.6.6 of wolfSSL has bug fixes and new features including:
 

README.md

@@ -35,6 +35,31 @@ wolfSSL_CTX_set_verify(ctx, SSL_VERIFY_NONE, 0);
 before calling wolfSSL_new();  Though it's not recommended.
 ```
 
+
+#wolfSSL (Formerly CyaSSL) Release 3.6.8 (09/17/2015)
+
+##Release 3.6.8 of wolfSSL fixes two high severity vulnerabilities.
+##It also includes bug fixes and new features including:
+
+- Two High level security fixes, all users SHOULD update.
+  a) If using wolfSSL for DTLS on the server side of a publicly accessible
+     machine you MUST update.
+  b) If using wolfSSL for TLS on the server side with private RSA keys allowing
+     ephemeral key exchange without low memory optimziations you MUST update and
+     regenerate the private RSA keys.
+
+     Please see https://www.wolfssl.com/wolfSSL/Blog/Blog.html for more details
+
+- No filesystem build fixes for various configurations
+- Certificate generation now supports several extensions including KeyUsage,
+    SKID, AKID, and Ceritifcate Policies
+- CRLs can be loaded from buffers as well as files now
+- SHA-512 Ceritifcate Signing generation
+- Fixes for sniffer reassembly processing
+
+See INSTALL file for build instructions.
+More info can be found on-line at //http://wolfssl.com/yaSSL/Docs.html
+
 #wolfSSL (Formerly CyaSSL) Release 3.6.6 (08/20/2015)
 
 ##Release 3.6.6 of wolfSSL has bug fixes and new features including:

configure.ac

@@ -6,7 +6,7 @@
 #
 #
 
-AC_INIT([wolfssl],[3.6.7],[https://github.com/wolfssl/wolfssl/issues],[wolfssl],[http://www.wolfssl.com])
+AC_INIT([wolfssl],[3.6.8],[https://github.com/wolfssl/wolfssl/issues],[wolfssl],[http://www.wolfssl.com])
 
 AC_CONFIG_AUX_DIR([build-aux])
 
@@ -31,7 +31,7 @@ AC_CONFIG_MACRO_DIR([m4])
 AC_CONFIG_HEADERS([config.h:config.in])dnl Keep filename to 8.3 for MS-DOS.
 
 #shared library versioning
-WOLFSSL_LIBRARY_VERSION=0:3:0
+WOLFSSL_LIBRARY_VERSION=1:0:0
 #                       | | |
 #                +------+ | +---+
 #                |        |     |

rpm/spec.in

@@ -68,8 +68,8 @@ mkdir -p $RPM_BUILD_ROOT/
 %{_docdir}/wolfssl/README.txt
 %{_libdir}/libwolfssl.la
 %{_libdir}/libwolfssl.so
-%{_libdir}/libwolfssl.so.0
-%{_libdir}/libwolfssl.so.0.0.3
+%{_libdir}/libwolfssl.so.1
+%{_libdir}/libwolfssl.so.1.0.0
 
 %files devel
 %defattr(-,root,root,-)

support/wolfssl.pc

@@ -5,6 +5,6 @@ includedir=${prefix}/include
 
 Name: wolfssl
 Description: wolfssl C library.
-Version: 3.6.7
+Version: 3.6.8
 Libs: -L${libdir} -lwolfssl
 Cflags: -I${includedir}

wolfssl/version.h

@@ -26,8 +26,8 @@
 extern "C" {
 #endif
 
-#define LIBWOLFSSL_VERSION_STRING "3.6.7"
-#define LIBWOLFSSL_VERSION_HEX 0x03006007
+#define LIBWOLFSSL_VERSION_STRING "3.6.8"
+#define LIBWOLFSSL_VERSION_HEX 0x03006008
 
 #ifdef __cplusplus
 }